

^-112 



VIRTUAL MACHINE MONITOR (VMM) 



^116 



BARE PLATFORM HARDWARE 



FIG. 1 



200 



VMM ADDRESS SPACE 
202 



VMM CODE AND 
DATA STRUCTURES 
206 



VM ADDRESS SPACE 
204 



GUEST OS/APPS. 
CODE AND 
DATA STRUCTURES 
208 



VIRTUAL MACHINE KERNEL 
210 



MORE GUEST CODE AND 
DATA STRUCTURES 
212 



BARE PLATFORM HARDWARE 214 



FIG. 2 



Q START ^ 



302 



300 



1 




DIVIDE VMM INTO FIRST PORTION 
AND SECOND PORTION 






CREATE FIRST ADDRESS SPACE 
ASSOCIATED WITH GUEST 
OS 



304 



T 



306 



CREATE SECOND ADDRESS 
SPACE ASSOCIATED WITH VMM 



308 



MAP FIRST PORTION OF VMM 
INTO THE FIRST ADDRESS SPACE 
AND THE SECOND ADDRESS SPACE 



T 



310 



312 



LOCATE SECOND PORTION OF 
VMM IN THE SECOND ADDRESS 
SPACE 



314 



DETECT THAT GUEST OS ATTEMPTS 
TO ACCESS A REGION OCCUPIED BY 
FIRST PORTION OF VMM WITHIN 
FIRST ADDRESS SPACE 



RELOCATE THE FIRST PORTION OF 
VMM WITHIN THE FIRST ADDRESS 
SPACE TO ALLOW THE GUEST OS 

TO ACCESS THE REGION 
PREVIOUSLY OCCUPIED BY THE 
FIRST PORTION OF THE VMM 



f END J 



•316 



318 



FIG. 3 



c 



•402 



400 



START 



■404 



DETECT AN ADDRESS SPACE 
CONFLICT 



406 



SEARCH FOR UNUSED REGION 
WITHIN VM ADDRESS 
SPACE 




UNUSED \ YES 
REGION 
FOUND? 



410 



REMAP KERNEL INTO 
THE UNUSED REGION 



412 



SELECT A RANDOM REGION 
WITHIN VM ADDRESS SPACE 



T 



414 



COPY MEMORY CONTENT FROM 
THE RANDOM REGION TO VMM 
ADDRESS SPACE 



± ^"416 

REMAP KERNEL INTO THE 

RANDOM REGION ' 



( END )n 



418 



FIG. 4 






0 1 


o 

LOl 
LU 


5 00 


UJ ^° 


O 


Q -r- 


< 


O 00 


CO 


O CD 


CO 




ES 


Ql 




Q 


O 
< 


0 < 




1 — 

co r± 


> 


^< 



CO 

Q ,_ CO <C 

»-^O^co 
co-ji-qq: 



CM 
CD 
lO 1 



o 
< 

Q_ 
CO 
CO 
CO 
LU 

Q 
Q 
< 



O <=>| 

So 
o ^ 
o a: 



< 




or 

Q 

< 



o 101 

5 

Q_ 



a: 
< 

DQ 



Q START ^ 



602 



600 



604 



SET ACCESS RIGHTS OF THE REGION 

OCCUPIED BY VMK TO A MORE 
PRIVILEGED LEVEL THAN A PRIVILEGE 
LEVEL ASSOCIATED WITH GUEST OS 



606 



RECEIVE A TRAP CAUSED BY ATTEMPT 
OF GUEST OS TO ACCESS HARDWARE 
RESOURCE HAVING A HIGHER 
PRIVILEGE LEVEL THAN PRIVILEGE 
LEVEL ASSOCIATED WITH GUEST OS 




DELIVER TRAP TO 

VMM IN VMM 
ADDRESS SPACE 



610 



YES 



•614 



YASTRAP 
CAUSED BY 
ADDRESS SPACE 
^CONFLICT? 



YES 



NO 



HANDLE THE TRAP IN A 
CORRESPONDING TRAP 
HANDLER 



616 



612 



RECEIVE CONTROL 

OVER THE TRAP 
SERVICED BY VMM 



RELOCATE VMK WITHIN THE 
VM ADDRESS SPACE 



618 



RETURN CONTROL TO GUEST OS 



620 



FIG. 6 



700 



720 






730^ 


PROCESSOR 


< 


► 


MEMORY 







FIG. 7 



